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In the Claims 

The following Listing of Claims replaces all prior versions in the application: 
LISTING OF CLAIMS 

1-2. (Canceled) 

3. (Currently amended) Method set forth in claim 44, characterised in that the keys CW, KRc 
and KP C are encrypted by three different service keys, namely K s , K sr and K sp respectively^ 

4. (Currently amended) Access control method controlling access to a broadcast digital dataflow 
previously scrambled using an encryption key CW transmitted in encrypted form in an 
entitlement control message ECM also including at least one access control criterion CA, said 
numeric data possibly being recorded as such in a receiving terminal or decrypted during 
transfer, wherein: 

on transmission: 

- generating an entitlement control message R-ECM £ for recording the content of the flow 

as a function of a recording key KR^and at least one criterion CRR defining a right to 
record, 

- generating an entitlement control message P-ECM ^ controlling access to play back the 

content of the recorded flow as a function of a playback key KP ^ and at least one criterion 

CRP defining a right to play back, and 

on reception: 

- analyzing the message R-ECM c , and 

- authorizing the recording if the criterion CRR is verified, otherwise prohibiting 
recording, 

- analyzing the message P-ECM g , and 

- authorizing the playback if the criterion CRP is verified, otherwise prohibiting the 
playback, 

wherein the keys CW, KRr and KPr are encrypted by a first service key K s. 

and wherein for a M e thod set forth in claim 2. charact e ris e d in that the sending phase and 
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for each dataflow: 

- br e akdowning th e breaking down a scrambling period into a sequence of crypto- 
periods GF^CP L each defining a validity duration of an individual key CWj, and at each 
crypto-period change, 

- scrambling the content of the flow using the key CWi, and m e moris e memorizing 
a value p(i) representative of the parity of i, 

- calculatingl y an entitlement control message SC-ECM jS€ — B€M, as a function 
of the previously defined encryption keys CWj.i, CWj, CWj+i, the value p(i) and the 
criterion CA» said message SC-ECM .SC — E€M t being intended to transport access rights 
to a data segment Sj corresponding to at least two crypto-periods, 

- encrypting the keys CW,.,, CWj, CW i+ i, using the playback key KP C , 

- encrypting the result of the encryption in the previous step using a second service 
key K' s , 

- encrypting the result of the encryption in the previous step using the recording 
key KRc. 

5. (Currently Amended) Access control method controlling access to a broadcast digital 
dataflow previously scrambled using an encryption key CW transmitted in encrypted form in an 
entitlement control message ECM also including at least one access control criterion CA, said 
numeric data possibly being recorded as such in a receiving terminal or decrypted during 
transfer, wherein: 
on transmission: 

- generating an entitlement control message R-ECM p for recording the content of the flow 

as a function of a recording key KR^and at least one criterion CRR defining a right to 
record, 

- generating an entitlement control message P-ECM C controlling access to play back the 

content of the recorded flow as a function of a playback key KP ^ and at least one criterion 

CRP defining a right to play back, and 

on reception: 

- analysing the message R-ECM g , and 



- authorizing the recording if the criterion CRR is verified, otherwise prohibiting 
recording, 

- analyzing the message P-ECM £ , and 
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- authorizing the playback if the criterion CRP is verified, otherwise prohibiting the 
playback, 

wherein the keys CW, KR C and KPr are encrypted by a first service key Kg , 
and wherein for a sending phase and that includ e s the following steps: 
for each dataflow: 



periods CPj each defining a validity duration of an individual key CWj, and at each crypto-period 
change, 

- scrambling the content of the flow using the key CWj, and m e moris e memorizing a 
value p(i) representative of the parity of i, 

- calculating an entitlement control message SC- ECMj as a function of the previously 
defined encryption keys CW I+ ,, CW,, CW j+ i, the value p (i) and the criterion CAj, said message 
SC-ECM] being intended to transport access rights to a data segment S,-4 corresponding to at 
least two crypto-periods, 



6. (Previously presented) Method set forth in claim 4, characterised in that the emission phase 
also includes the following steps: 

- calculating the entitlement control message ECMj = f[(ECWj,OCWj,CA)] wherein EC Wj 
and OCWj represent the even and odd control words previously encrypted using a first service 
key K 5 , respectively 

ECWi=CWi if i is even, otherwise ECWi=CWi+l; 
OCWrCWi if i is odd, otherwise OCWj=CW i+1 

- broadcasting parameters in the ECM signal, identifying the ECM channels attached to 
the service broadcasting the content of messages ECM,, P-ECM C , R- ECM C , SC-ECMj, 

- providing the ECMj, P-ECM C , R-ECM C , SC-ECMj messages to the receiving terminal. 




-breaking down a scrambling period into a sequence of cryptc 



- encrypting the keys CWj+i, CW„ CW j+ i using a second service key K' s , 

- encrypting the result of the encryption in the previous step using the key KP C , 

- encrypting the result of the encryption in the previous step using the recording 



key KR C . 



7. (Original) Method set forth in claim 6, characterised in that the ECMj, P-ECM C , R-ECM 0 , 
SC-ECMj messages are broadcast on ECM channels associated with the content of segment Sj. 
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8. (Original) Method set forth in claim 6, characterised in that the R-ECM message is output to 
the receiving terminal on request from an Authorisation Server at the network entry. 

9. (Original) Method set forth in claim 6, characterised in that the P-ECM message is output to 
the receiving terminal on request from an Authorisation Server at the network entry. 

10. (Original) Method set forth in claim 7, characterised in that the reception phase includes the 

following steps: 

- recovering the ECM channel from the ECMi message, using the signal attached 
to the service broadcasting the dataflow, and at each change of i, 

- analysing the message ECMj so as to recover the even control word OCW and the 
odd control word ECW, to descramble the content of the broadcast flow so as to obtain 
direct access to this content. 

1 1 . (Original) Method set forth in claim 7, characterised in 
that the reception phase includes the following steps: 

- recovering the ECM channel from the P-ECM C , R-ECM C , SC-ECMj messages, 
from the signal attached to the service broadcasting the content; 

- analysing the R-ECM C message to verify record access criteria CRR, 

- memorising the recording key KRc 

- recovering the message P-ECM C and store it with the content; and 
for each crypto-period i: 

- recovering the message SC-ECMj, 

- decrypting the message SC-ECMj using the recording key KR C , and 

- recording the decrypted message SC-ECMi with the content. 

12. (Original) Method set forth in claim 7, characterised in that playback access to the content 
in the recorded flow is obtained according to the following steps: 

-recovering the message P-ECM C in the content and analyse it to verify read access 

criteria CRP, 

-memorising the playback key KP c; and 
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- recovering the current SC — ECMi message in the content; 

-decrypting the SC-ECMj message with the playback key KP C and verify access 
criteria, 

- recovering the encrypted keys CWj+i, CWj, CWj+i and the value p(i) indicating 
the parity of i, and 

- decrypting said keys depending on the read direction to deduce ECW and OCW 
from them; then 

- applying either ECW or OCW to descramble the content when playing back. 

13. (Original) Method set forth in claim 7, characterised in that access to play back the content 
of the flow is obtained according to the following steps: 

- recovering the message P-ECM C in the content, 

- analysing the message P-ECM C to verify read access criteria CRP, 

- memorising KP C , and 

- recovering the current SC-ECMj message in the content, 

- decrypting the SC-ECMj message with the second service key K' s and verify 
access criteria, 

- recovering the encrypted keys CWj+i, CWj, CW j+ i and the value p(i) indicating 
the parity of i, and 

- decrypting said keys depending on the direction of reading to deduce ECW and 
OCW; then 

- applying either ECW or OCW to descramble the content. 

14. (Previously presented) Method set forth claim 1 1 , 

characterised in that the reception phase also includes 

the following steps: 

- generating a local key K| from attributes 
contained in the message R-ECM and at least one parameter related to the identity of the 
receiving terminal, 

- locally over-encrypting the content to be recorded with this key K|. 

- when playing back, regenerating the key Ki using attributes contained in the 
message P-ECM and at least one parameter related to the identity of the receiving 
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- decrypting the recorded content using the 10 regenerated key K\. 



1 5 . (Currently amended) Access control method controlling access to a broadcast digital 
dataflow previously scrambled using an encryption key CW transmitted in encrypted form in an 
entitlement control message ECM also including at least one access control criterion CA, said 
numeric data possibly being recorded as such in a receiving terminal or decrypted during 
transfer, wherein: 
on transmission: 

- generating an entitlement control message R-ECM C for recording the content of the flow 
as a function of a recording key KR^and at least one criterion CRR defining a right to 
record, 

- generating an entitlement control message P-ECM g controlling access to play back the 

content of the recorded flow as a function of a playback key KP r _ and at least one criterion 

CRP defining a right to play back, and 

on reception: 

- analysing the message R-ECM £ , and 

- authorizing the recording if the criterion CRR is verified, otherwise prohibiting 
recording, 

- analyzing the message P-ECM g , and 

- authorizing the playback if the criterion CRP is verified, otherwise prohibiting the 
playback. 

M e thod s e t forth in claim 1, charact e ris e d in that wherein the broadcast digital data flow is of 
represent audiovisual programs. 

16. (Currently amended) Access control system controlling access to a digital dataflow 
dataflow including a scrambling platform (2) including at least one generator of entitlement 
control messages ECM and at least one d e scrambiing descrambling receiver (4) provided with a 
security processor-(44), characterized in that the scrambling platform (2)-also includes: 

- a generator of entitlement control messages R-ECM C when recording the content 
of the received flow and a generator of entitlement control messages P-ECM C when 
playing back the content of a recorded flow, and in that the descrambling receiver-(4), 
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includes: 

- means of recovering the ECM channel from P-ECM C , R-ECM C messages, 

- means of decrypting the content of a received flow to record it, and 

- means of decrypting the content of a recorded flow to play it back, 

- means for breaking down a scrambling period into a sequence of crypto-periods 
CP L each defining a validity duration of an individual key CW , , and at each crypto-period 
change, 

- means for scrambling the content of the flow using a key CW i , and memorizing a 

value p(i) representative of the parity of i, 
- calculating an entitlement control message SC-ECM , as a function of previously 

defined encryption keys CW i., , CW i , CW i+l , the value pfi) and a criterion CA,. said 

message SC-ECM i being intended to transport access rights to a data segment S i 

corresponding to at least two crypto-periods. 

- encrypting the keys CW u , CW,, CW m , using the playback key KP ,. 
- encrypting the result of the encryption in the previous step using a second service 

key K%. 

- encrypting the result of the encryption in the previous step using the recording 
key KR, . 

1 7. (Currently amended) System set forth in claim 1 6, characterised in S-that that the 
descrambling receiver (4) also includes means of generating a local key K[ from attributes 
contained in the R-ECM C message and the identity of the receiving terminal to locally 
encrypt/decrypt the content of the received flow. 

18. (Canceled) 

19. (Currently amended) Scrambling platform including at least one generator of entitlement 

control messages ECM controlling access to a dataflow broadcast in scrambled form, 
characterised in that it also includes a generator of entitlement control messages R-ECM r 
to control recording the content of a received flow and a generator of entitlement control 
messages P-ECM ^ to control play back the content of a recorded flow, and further 
including Scrambling platform s e t forth in claim 1 8, chnrnct e rin e A in that it include s: 
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- means of breaking down the scrambling period into a sequence of crypto-periods 
CPj each defining a validity duration of an individual key CWj, 

- means of encrypting the content of the flow at each change of the crypto-period i 
using the key CWj, 

- means of calculating an entitlement control message SC-ECMj as a function of 
the keys CW n ,CWi,C Wj., corresponding to crypto-periods CPj, CP M and CP i+ i 
respectively, a parity parameter p(i) and the access control criterion CA h said message 
SC-ECMj being intended to carry access rights to a data segment ~1 corresponding to at 
least two crypto-periods, 

- means of encrypting the keys CWj.,, CWj, CW, + , using a playback key KP C , 

- means of encrypting the encryption result in the previous step using a second 
service key K' s , 

- means of encrypting the result of the encryption in the previous step using a 
record key KRc. 

20. (Currently amended) Scrambling platform including at least one generator of entitlement 
control messages ECM controlling access to a dataflow broadcast in scrambled form, 
characterised in that it also includes a generator of entitlement control messages R-ECM ^ 
to control recording the content of a received flow and a generator of entitlement control 
messages P-ECMao control play back the content of a recorded flow Platform s e t forth in 
claim 18, charact e rised in that it al s o includ e s , and further including : 

- means of breaking down the scrambling period into a sequence of crypto-periods 
CPj each defining a validity duration of an individual key CWj, 

- means of encrypting the content of the flow at each change of the crypto — period 
i using the key CWj, 

- means of calculating an entitlement control message SC-ECM, as a function of 
the keys CWj.i,CWj,CW i+ i corresponding to crypto-periods CPj, CPj.i and CP i+ i 
respectively, a parity parameter p(i) and the access control criterion CA„ said message 
SC-ECMj being intended to carry access rights to a data segment Si corresponding to at 
least two crypto-periods, 

- means of encrypting the encryption result in the previous step using a second 
service key K' s , 
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- means of encrypting the control words CWj+i, CWj, CW i+ i using a playback key 

KP C , 

- means of encrypting the encryption result in the previous step using a record key 

KRc. 

2 1 . (Currently amended) Descrambling receiver (4) of a dataflow broadcast in scrambled form 
using a scrambling key CWi including a security processor including at least one key KRc 
intended to descramble record entitlement control messages R-ECM C and at least one key KP C 
intended to descramble the play back entitlement control messages P — ECM 0 , receiver 
characterised in that it includes: 

-means of recovering the ECM channel from P-ECM C messages, and R-ECM C 
messages from the signal attached to the service broadcasting the content; 

- means of decrypting messages R-ECM C using the record key KR c to verify the 
right to record the content of a received flow, 

-means of decrypting messages P-ECM C using the key KP C to verify the right to 
play back the content of a recorded floWi 

- means for breaking down a scrambling period into a sequence of crvpto-periods 
CP, each defining a validity duration of an individual key CW , , and at each crypto-period 
change, 

- means for scrambling the content of the flow using a key CW i , and memorizing a 

value p(i) representative of the parity of i, 
- calculating an entitlement control message SC-ECM , as a function of previously 

defined encryption keys CW u , CWi, CW , +I , the value p£i) and a criterion CA ,. said 

message SC-ECM j_ being intended to transport access rights to a data segment S , 

corresponding to at least two crvpto-periods, 

- encrypting the keys CW j.i, C Wi, CWi+i , using the playback key KP £ , 
- encrypting the result of the encryption in the previous step using a second service 

key K% , 

- encrypting the result of the encryption in the previous step using the recording key KR g . 
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22. (Original) Receiver set forth in claim 21, characterized in that it also includes means of 
generating a local key Ki from attributes contained in the receiver identity message R-ECM and 
locally decrypt the content of the received flow. 

23. (Original) Receiver set forth in claim 2 1 , characterised in that the security processor is a 
smart card. 

24. (Currently amended) Access control method controlling access to a broadcast digital 
dataflow previously scrambled using an encryption key CW transmitted in encrypted form in an 
entitlement control message ECM also including at least one access control criterion CA, said 
numeric data possibly being recorded as such in a receiving terminal or decrypted during 
transfer, wherein: 

on transmission: 

- generating an entitlement control message R-ECM C for recording the content of the flow 

as a function of a recording key KR ^ and at least one criterion CRR defining a right to 
record, 

- generating an entitlement control message P-ECM C controlling access to play back the 

content of the recorded flow as a function of a playback key KJVand at least one criterion 

CRP defining a right to play back, and 

on reception: 

- analysing the message R-ECM r, and 

- authorizing the recording if the criterion CRR is verified, otherwise prohibiting 
recording, 

- analyzing the message P-ECML and 

- authorizing the playback if the criterion CRP is verified, otherwise prohibiting the 
playback, 

wherein the keys CW, KR .and KP r are encrypted by three different service keys, namely 
K s , K g and K a respectively, and 

wherein for a M e thod s e t forth claim 3. characterised in that the- sending phase and for 
includ e s the following steps: 

for-each dataflow: 

- br e akdowning breaking down a the-scrambling period into a sequence of crypto- 
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periods CFj each defining a validity duration of an individual key CWj, and at each 
crypto — period change, 

- scrambling the content of the flow using the key CWi, and memorise a value p(i) 
representative of the parity of i,ing an entitlement control message SC — ECMj as a 
function of the previously defined encryption keys CWh, CWj, CW j+1 , the value p(i) and 
the criterion CA i; said message SC — ECMj being intended to transport access rights to a 
data segment Sj corresponding to at least two crypto-periods, 

- encrypting the keys CW M , CWj, CW W , using the playback key KP C , 

- encrypting the result of the encryption in the previous step using a second service 
key K' s , 

- encrypting the result of the encryption in the previous step using the recording 
key KR C . 

25. (Currently amended) Access control method controlling access to a broadcast digital 
dataflow previously scrambled using an encryption key CW transmitted in encrypted form in an 
entitlement control message ECM also including at least one access control criterion CA. said 
numeric data possibly being recorded as such in a receiving terminal or decrypted during 
transfer, wherein: 
on transmission: 

- generating an entitlement control message R-ECM g for recording the content of the flow 
as a function of a recording key KR r and at least one criterion CRR defining a right to 
record, 

- generating an entitlement control message P-ECM C controlling access to play back the 

content of the recorded flow as a function of a playback key KP ,- and at least one criterion 
CRP defining a right to play back, and 
on reception: 

- analysing the message R-ECM ,-, and 

- authorizing the recording if the criterion CRR is verified, otherwise prohibiting 
recording, 

- analyzing the message P-ECM ,, , and 

- authorizing the playback if the criterion CRP is verified, otherwise prohibiting the 
playback. 
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wherein the keys CW, KR^ and KP L are encrypted by three different service keys, namely 
K 5 , and K m respectively, and wherein for a M e thod s e t forth claim 3. charact e ris e d in that th e 
sending phase includes th e following st e p s : and 

for each dataflow: 

- br e akdowning breaking down the scrambling period into a sequence of crypto — periods 
CPj each defining a validity duration of an individual key CWj, and at each crypto-period change, 

- scrambling the content of the flow using the key CWj, and memorise a value p(i) 
representative of the parity of i, 

- calculating an entitlement control message SC- ECMj as a function of the 
previously defined encryption keys CW i+) , CWi, CW j+ i, the value p (i) and the criterion CA b 
said message SC-ECMi being intended to transport access rights to a data segment ~1 
corresponding to at least two crypto-periods, 

- encrypting the keys CW I+1 , CWj, CW i+1 using a second service key K' s , 

- encrypting the result of the encryption in the previous step using the key KP C , 

- encrypting the result of the encryption in the previous step using the recording key KR,;. 

26. (Previously presented) Method set forth claim 5, characterised in that the emission phase 
also includes the following steps: 

- calculating the entitlement control message ECMj = f[(ECWj,OCWj,CA)] wherein ECWj 
and 0CW| represent the even and odd control words previously encrypted using a first service 
key K 5 , respectively 

ECWi=CWi if i is even, otherwise ECWi=CWi+l; 
OCWj=CWi if i is odd, otherwise OCWj=CW 1+ i 

- broadcasting parameters in the ECM signal, identifying the ECM channels attached to 
the service broadcasting the content of messages ECMj, P-ECM C , R- ECM C , SC-ECMj, 

- providing the ECMj, P-ECM C , R-ECM C , SC-ECM, messages to the receiving terminal. 

27. (Previously presented) Method set forth claim 12, 

characterised in that the reception phase also includes 
the following steps: 

- generating a local key Ki from attributes 
contained in the message R-ECM and at least one parameter related to the identity of the 
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receiving terminal, 

- locally over-encrypting the content to be recorded with this key K\. 

- when playing back, regenerating the key Ki using attributes contained in the 
message P-ECM and at least one parameter related to the identity of the receiving 
terminal, 

- decrypting the recorded content using the 10 regenerated key Ki. 
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